19326d11197a672708de5b7f9ba9c905495854f71903f2abd575c98f478b34e9

Sharing

Copy URL Twitter E-mail

General

Target

19326d11197a672708de5b7f9ba9c905495854f71903f2abd575c98f478b34e9
Size

3.6MB
MD5

f7841332b2212e5fd85961db730943b1
SHA1

b1119ec65a077e840601c8206c85a9e04a1e3680
SHA256

19326d11197a672708de5b7f9ba9c905495854f71903f2abd575c98f478b34e9
SHA512

86e96d46a3a51af46237023fcf49822216c9f519eb68da248a75c5919c4ff9c0ba4aa3c695e88f4fde38c91d1514e29f01461d6b5473d604ca200833171862f1
SSDEEP

98304:bAqONHC8enrweQ8Iy5aF0W5zJ9yNtNKDyqfWi/oj9ghi1RebMIg9Cbk/V8Vh:GClQ89aFCrKDyqfWkojDIg9Cbk/V8Vh

Score

N/A

Malware Config

Signatures

Files

19326d11197a672708de5b7f9ba9c905495854f71903f2abd575c98f478b34e9
.exe windows x86

2037d0c868bee0f29700f95f3c34b578

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleMode
GetStringTypeW
WriteConsoleW
SetEnvironmentVariableA
IsProcessorFeaturePresent
PeekNamedPipe
GetFileInformationByHandle
LCMapStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
QueryPerformanceCounter
HeapCreate
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStdHandle
SetUnhandledExceptionFilter
GetFileType
MoveFileW
SetStdHandle
HeapSize
HeapQueryInformation
CreateThread
ExitThread
ExitProcess
GetSystemTimeAsFileTime
VirtualQuery
GetSystemInfo
VirtualAlloc
GetConsoleCP
RaiseException
RtlUnwind
HeapFree
HeapAlloc
DecodePointer
EncodePointer
FindFirstFileExW
GetDriveTypeW
GetStartupInfoW
HeapSetInformation
GetCommandLineW
FindResourceExW
VirtualProtect
GetNumberFormatW
GetWindowsDirectoryW
GetFileSizeEx
GetFileAttributesExW
SetErrorMode
GetTempPathW
GetTempFileNameW
GetFileTime
SearchPathW
Sleep
GetProfileIntW
GetFileAttributesW
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
HeapReAlloc
GetTimeZoneInformation
TlsGetValue
LocalAlloc
WaitForSingleObject
ResumeThread
SetThreadPriority
InterlockedIncrement
GetTickCount
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
GetCurrentThread
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringA
InterlockedExchange
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileW
lstrcmpiW
GetThreadLocale
lstrlenA
lstrcmpA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindFirstFileW
FindNextFileW
FindClose
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedDecrement
ReleaseActCtx
CreateActCtxW
GetModuleFileNameW
GetCurrentProcessId
GlobalGetAtomNameW
lstrcpyW
WideCharToMultiByte
GlobalFree
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
LocalFree
MulDiv
lstrlenW
FreeResource
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
GetModuleHandleW
FreeLibrary
GetProcAddress
CompareStringW
LoadLibraryW
ActivateActCtx
GetLastError
DeactivateActCtx
lstrcmpW
GetCurrentDirectoryW
CreateMutexW
CloseHandle
OpenMutexW
MultiByteToWideChar
RemoveDirectoryW
DeleteFileW
CreateDirectoryW
SetLastError
FindResourceW
LoadResource
LockResource
SizeofResource
CopyFileW
GetProcessHeap

user32

EnumChildWindows
UnregisterClassW
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
CopyAcceleratorTableW
CharUpperBuffW
LockWindowUpdate
CopyIcon
SetRect
SetClipboardData
RealChildWindowFromPoint
ShowOwnedPopups
TranslateMessage
WaitMessage
PostThreadMessageW
SetWindowContextHelpId
MapDialogRect
RegisterClipboardFormatW
PostQuitMessage
GetNextDlgGroupItem
SetCursorPos
GetMessageW
MonitorFromPoint
UpdateLayeredWindow
EnableScrollBar
ValidateRect
UnionRect
CopyImage
DestroyAcceleratorTable
DrawIcon
SetLayeredWindowAttributes
EnumDisplayMonitors
DrawFrameControl
DrawEdge
SetParent
IsRectEmpty
CreateDialogIndirectParamW
EndDialog
GetSysColorBrush
SetClassLongW
SetMenuDefaultItem
DrawIconEx
IsMenu
GetMenuDefaultItem
SystemParametersInfoW
GetMenuItemInfoW
EndPaint
BeginPaint
GetWindowDC
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
UnpackDDElParam
ReuseDDElParam
GetWindowThreadProcessId
LoadAcceleratorsW
InsertMenuItemW
CreatePopupMenu
BringWindowToTop
GetDesktopWindow
CharUpperW
IsIconic
IsZoomed
NotifyWinEvent
GetCursorPos
MessageBeep
ReleaseCapture
LoadCursorW
SetCapture
KillTimer
SetTimer
SetWindowRgn
GetSystemMenu
DeleteMenu
IntersectRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
GetDoubleClickTime
CheckMenuItem
GetMenuState
GetMenuStringW
AppendMenuW
InsertMenuW
RemoveMenu
MapVirtualKeyW
GetKeyNameTextW
IsWindowEnabled
MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
GetAsyncKeyState
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetFocus
SetFocus
GetWindowTextLengthW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
GetMenuItemID
GetMenuItemCount
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
IsClipboardFormatAvailable
InvalidateRgn
CharNextW
DefFrameProcW
DefMDIChildProcW
GetWindowRgn
SubtractRect
MapVirtualKeyExW
IsCharLowerW
PtInRect
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
DefWindowProcW
GetMenu
SetWindowPos
GetWindow
GetSystemMetrics
SetForegroundWindow
ShowWindow
GetWindowTextW
GetUpdateRect
CreateMenu
HideCaret
InvertRect
TranslateMDISysAccel
EnableMenuItem
DrawMenuBar
UpdateWindow
EnumWindows
LoadIconW
RedrawWindow
CloseClipboard
EmptyClipboard
OpenClipboard
IsWindowVisible
GetKeyState
SetWindowLongW
CallWindowProcW
AdjustWindowRectEx
IsWindow
FrameRect
LoadImageW
GetIconInfo
ReleaseDC
GetDC
GetSysColor
FillRect
DrawStateW
OffsetRect
DrawFocusRect
InflateRect
CopyRect
PostMessageW
TrackPopupMenuEx
GetWindowRect
GetActiveWindow
WindowFromPoint
ClientToScreen
InvalidateRect
SetCursor
GetNextDlgTabItem
GetWindowLongW
DestroyIcon
DestroyMenu
DestroyCursor
GetClientRect
GetSubMenu
LoadMenuW
SetRectEmpty
GetParent
EnableWindow
SendMessageW
TranslateAcceleratorW

gdi32

CreateHatchBrush
CreateFontIndirectW
GetTextExtentPoint32W
GetTextColor
SetRectRgn
CombineRgn
GetMapMode
DPtoLP
CreateEllipticRgn
CreatePolygonRgn
GetBkColor
Polyline
Ellipse
Polygon
CreateDIBitmap
GetTextMetricsW
EnumFontFamiliesW
GetTextCharsetInfo
LPtoDP
CreateDIBSection
Rectangle
OffsetRgn
GetRgnBox
SetDIBColorTable
GetDIBits
RealizePalette
StretchBlt
RoundRect
GetNearestPaletteIndex
GetSystemPaletteEntries
ExtFloodFill
SetPaletteEntries
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetWindowOrgEx
GetViewportOrgEx
EnumFontFamiliesExW
GetTextFaceW
SetPixelV
CreateRectRgn
CreatePalette
SelectClipRgn
GetObjectType
SelectPalette
GetViewportExtEx
CreatePatternBrush
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetPaletteEntries
DeleteObject
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
CreateRoundRectRgn
CreatePen
CreateDCW
CopyMetaFileW
GetDeviceCaps
PatBlt
CreateRectRgnIndirect
CreateFontW
CreateSolidBrush
GetObjectW
SetPixel
GetPixel
DeleteDC
SetTextColor
SetBkColor
SelectObject
CreateBitmap
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
GetStockObject
GetWindowExtEx

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegQueryValueExW
RegCloseKey
RegOpenKeyExW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
RegEnumValueW
RegCreateKeyExW
RegEnumKeyExW

shell32

SHGetPathFromIDListW
SHGetSpecialFolderPathW
SHGetMalloc
SHGetDesktopFolder
ShellExecuteW
DragFinish
SHBrowseForFolderW
ShellExecuteExW
SHGetSpecialFolderLocation
SHAppBarMessage
SHGetFileInfoW
DragQueryFileW

comctl32

_TrackMouseEvent
InitCommonControlsEx
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_Create
ImageList_GetImageCount
ImageList_Destroy
ImageList_DrawEx

shlwapi

PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathRemoveFileSpecW
PathIsUNCW

ole32

CoRegisterMessageFilter
CoRevokeClassObject
OleLockRunning
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
CoDisconnectObject
CoFreeUnusedLibraries
CoCreateGuid
CreateStreamOnHGlobal
OleGetClipboard
CLSIDFromProgID
OleRun
CLSIDFromString
CoInitialize
CoInitializeEx
CoCreateInstance
CoUninitialize
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
CoTaskMemFree
OleUninitialize
OleInitialize
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleDraw
OleTranslateAccelerator

oleaut32

VariantClear
OleCreateFontIndirect
LoadTypeLi
VarBstrFromDate
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysStringLen
SysFreeString
VariantChangeType
SysAllocStringLen
VariantInit
SysAllocString

oledlg

OleUIBusyW

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipCloneImage
GdipDrawImageI
GdipGetImageGraphicsContext
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdiplusShutdown
GdipDrawImageRectI

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 351KB - Virtual size: 351KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 185KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2037d0c868bee0f29700f95f3c34b578

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 351KB - Virtual size: 351KB

.data Size: 27KB - Virtual size: 61KB

.rsrc Size: 1.6MB - Virtual size: 1.6MB

.reloc Size: 185KB - Virtual size: 185KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 351KB - Virtual size: 351KB

.data
Size: 27KB - Virtual size: 61KB

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

.reloc
Size: 185KB - Virtual size: 185KB